Auto-redirecting to multiple idp's

Dubz · ‎07-16-2018

Hi All,

We're configuring a second instance of AD and i just want to clarify some details about how users are redirected to the correct idp.

Does anyone have any input on how best to seamlessly redirect users to the correct idp? If i use the glide.authenticate.sso.redirect.idp property i can only redirect users to one idp which is no good to me. If i disable the property users have to click the 'use external login' link and then enter their username in order to be redirected.

I was thinking of trying to modify the login widget to immediately direct users to the screen that follows after clicking the 'use external login' button. That seems to be the most seamless option at the moment but f anyone has any genius alternatives (or indeed guidance on how to modify the login widget) i would love to hear them 🙂

Cheers

Dave

Dubz · ‎09-12-2018

If anyone's interested, the glide.authenticate.sso.redirect.idp property is overridden by providing users with a link that directs them to the correct idp. The syntax below achieves this so my internal users are picked up by the auto-redirect when they navigate to the instance address and customer users are provided with the link below to take them to a different idp.

https://<instance_address>/login_with_sso.do?glide_sso_id=<sys_id of the sso configuration>

View solution in original post

Dubz · ‎09-12-2018

If anyone's interested, the glide.authenticate.sso.redirect.idp property is overridden by providing users with a link that directs them to the correct idp. The syntax below achieves this so my internal users are picked up by the auto-redirect when they navigate to the instance address and customer users are provided with the link below to take them to a different idp.

https://<instance_address>/login_with_sso.do?glide_sso_id=<sys_id of the sso configuration>

Joyce W · ‎02-06-2019

Hi David,

Sorry to come back to old thread.

where did you enter the syntax you have provided, https://<instance_address>/login_with_sso.do?glide_sso_id=<sys_id of the sso configuration>. Is this on business rule?

My redirect glide record has a value of sys id for default IdP, which does not give expected results. It keeps logging back in.

When I take the value out from the glide record, the log out URL becomes the value I have entered on External logout redirect property.

Dubz · ‎02-07-2019

Hi Joyce,

We're redirecting our customers to ServiceNow from our primary customer portal so when they click on the 'Support' link they are redirected to that URL.

I don't know how you would do this redirect from within ServiceNow as you would need users to have logged in before you could start leveraging business rules etc.

I would recommend you look at Richards response below, if you're not redirecting from another portal i think that's the best option.

Cheers

Dave

Richard78 · ‎12-18-2018

I'm not sure if this would be helpful to you at the moment, but we were looking at doing something like this and after alot of clumping around trying to do elaborate customization for login, I realized that the Portal login page widget could be copied and edited. All I had to do was change the default value in the widget to external, then the portal simply asks for the username, if that user does not have any IDP assigned to them then the password field drops down if they do have an IDP assigned to them then it sends them to the IDP login page. We are determining IDP based on the users primary email address when imported into the system.